[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...

To: Florian Weimer <fw@xxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
From: wastedimage <wastedimage@xxxxxxxxx>
Date: Tue, 14 Dec 2004 16:33:59 -0600

can anyone provide me with a traffic sample of this?  I would really
like to see if this is the actual exploit or just a script kiddy
trying his little heart out.



image
On Mon, 13 Dec 2004 21:53:41 +0100, Florian Weimer <fw@xxxxxxxxxxxxx> wrote:
> * James Lay:
> 
> > Here they be.  ODD.  Anyone else seeing this?
> 
> Probably yes. 8-) 42/TCP is used by Microsoft's WINS replication, and
> this service has got a security hole for which Microsoft has yet to
> release a patch.
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
  - From: Valdis . Kletnieks

References:
- [Full-Disclosure] TCP Port 42 port scans? What the heck over...
  - From: James Lay
- Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
  - From: Florian Weimer

Prev by Date: [Full-Disclosure] Re: NetWare Screensaver Authentication Bypass From The Local Console
Next by Date: Re: [Full-Disclosure] HOW TO BREAK XP SP2 POPUP BLOCKER: kick it in the nut !
Previous by thread: Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
Next by thread: Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
Index(es):
- Date
- Thread